Healthcare Information Security

OIG

OIG: NC Medicaid Eligibility Data Security Measures Must Improve

December 28, 2017 - The North Carolina State Medicaid agency (State agency) failed to meet federal requirements for Medicaid eligibility data security, according to an Office of Inspector General (OIG) report. The State agency had the Office of North Carolina Families Accessing Services Through Technology (NC FAST) operate its Medicaid eligibility determination system. However, the State agency did not ensure...


More Articles

OIG: Security Risk Assessments, Disaster Recovery Needed at Hospitals

by Elizabeth Snell

While two Indian Health Service (IHS) hospitals had increased system security and physical controls surrounding prescription drug and opioid disbursements, the Office of Inspector General (OIG) still determined that more improvements needed to...

Information Technology, Cybersecurity Issues Common in OIG Areas

by Elizabeth Snell

Cybersecurity issues and information technology issues are both common in numerous areas that the Office of Inspector General (OIG) plans to focus on, according to the latest OIG semiannual report to Congress. OIG wants to keep working on grants...

Evolving Cybersecurity Threats, Protecting Data Top HHS Challenges

by Elizabeth Snell

Adequately addressing the industry’s current cybersecurity threats is a key aspect to one of the major management and performance challenges for HHS, the Office of Inspector General determined in its annual report. OIG’s 2017 Top...

Alabama Medicaid Data Security, Information Security Can Improve

by Elizabeth Snell

Alabama's Medicaid Management Information System (MMIS) had an adopted security program, but there were still potential vulnerabilities stemming from lacking Medicaid data security, according to a recent OIG investigation. “These...

OIG Notes NC Potential Medicaid Data Security Vulnerabilities

by Elizabeth Snell

The North Carolina State Medicaid agency (State agency) did not implement necessary information system general controls to ensure proper Medicaid data security measures, according to an OIG report. The State agency contracts with CRSA, Inc. for...

New Mexico Medicaid Data Security Requires Improvements

by Elizabeth Snell

The New Mexico Human Services Department (HSD) has certain vulnerabilities in its Medicaid data security, which could put HSD operations at risk, according to a recent OIG investigation. HSD migrated from a legacy eligibility system to the Automated...

OIG Stresses Information Security, Data Integrity for 2017

by Elizabeth Snell

Improving data integrity and information security measures were just two of the areas noted in the recent OIG Semiannual Report to Congress. “With the sheer amount of data and its complexity, however, the Department continues to face challenges...

OIG Notes Va. Medicaid Information Security Vulnerabilities

by Elizabeth Snell

An Office of Inspector General (OIG) audit found the Virginia Medicaid Management Information System (MMIS) to have information security vulnerabilities. “Virginia did not adequately secure its Medicaid data and information systems, which...

HHS OIG Phone Scam Raises Patient Data Privacy Concerns

by Elizabeth Snell

The HHS Office of Inspector General (OIG) hotline number for reporting fraud was recently spoofed, according to an HHS statement. Individuals reported receiving phone calls claiming to be from HHS OIG, requesting that they confirm personal information...

OIG Finds IT Weaknesses in MA Medicaid Management Info System

by Elizabeth Snell

The Massachusetts Medicaid Management Information System (MMIS) was not adequately protected, which could have compromised the integrity of the state’s Medicaid program, according to a recent Office of Inspector General (OIG) report. These...

HHS Information Security Programs Better, Can Still Improve

by Elizabeth Snell

The Department of Health and Human Services has made improvements to its information security programs, including in its compliance with the Federal Information Security Modernization Act of 2014 (FISMA), but there are still areas that can become...

OIG Finds Slight Increase in Medicare Information Security Gaps

by Elizabeth Snell

Evaluations of the Medicare administrative contractor (MAC) information security program found that the programs were adequate in scope sufficiency but still had an increase in security gaps from the previous year. The Office of Inspector General...

EHR Contingency Plans Part of OIG 2016 Health IT Focus

by Elizabeth Snell

The Office of Inspector General (OIG) explained in its recent semiannual report to Congress how reviewing EHR contingency plans in healthcare organizations and wireless penetration tests of select CMS data centers were key areas of health IT...

OIG to Focus on HHS Information Security, Penetration Testing

by Elizabeth Snell

The Office of Inspector General (OIG) plans to audit the Department of Health and Human Services (HHS) information security controls to track drug prescription reimbursements, according to the 2017 OIG work plan. HHS will also be subject to penetration...

NY Can Still Improve Health Exchange Data Security Measures

by Elizabeth Snell

The Office of Inspector General (OIG) determined in a recent investigation that New York did  implement health insurance exchange data security measures in its web site and database, but improvements must still be made to ensure that PII...

OIG Report Finds CO Medicaid Data Security Controls Lacking

by Elizabeth Snell

Colorado’s Medicaid data security may have increased risk due to vulnerabilities found in the Colorado Department of Health Care Policy and Financing (HCPF) information systems according to a recent investigation by the Office for Inspector...

Information Security Weaknesses in MN Health Insurance Exchange

by Elizabeth Snell

Minnesota recently implemented security controls across its health insurance exchange (MNsure), but there are still information security weaknesses that could affect PII security, according to the Office of Inspector General (OIG). Improvements...

Data Security Vulnerabilities Found in CMS Wireless Networks

by Elizabeth Snell

While the Centers for Medicare and Medicaid Services (CMS) has effective security controls in place to prevent cybersecurity attacks, some data security vulnerabilities were found in its wireless networks, according to a recent Office of Inspector...

Most Hospitals Consider EHR Security in Contingency Planning

by Elizabeth Snell

Nearly two-thirds of hospitals reported that EHR security is considered through their application of  HIPAA rules as they implement contingency planning, the Office of Inspector General found. Furthermore, when it comes to EHR contingency...

X

SIGN UP and gain free access to articles, white papers, webcasts and exclusive interviews on

HIPAA Compliance
BYOD
Cybersecurity
Data Breaches
Ransomware

Our privacy policy

no, thanks